Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: oqWX9tBxmPE9bycnFO8b/Yv74p7V/N37YqFF8yMzlMU=
Subject key identifier: D4:D7:E2:39:3F:1E:F8:55:9E:8D:FA:A9:08:73:DD:E3:C2:93:F2:D4
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 019D38D323D60B981315809263DC4DDFF78D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 07B1
Signing time: Sun 29 Mar 2026 09:00:54 +0000
Manifest this update: Sun 29 Mar 2026 09:00:54 +0000
Manifest next update: Mon 30 Mar 2026 09:00:54 +0000
Files and hashes: 1: h1IcZRGY_rRXRhpZWTLbtpzh9tM.roa (hash: L8O1+G2QnBwVNFEY7LCl7zf6sGt3HNSfVfaE38wa8Uo=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: AF3wTw+imxStJv1/gwX4huqzgYWJDy6h50ZXtGcc0sk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:23:d6:0b:98:13:15:80:92:63:dc:4d:df:f7:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: Mar 29 09:00:54 2026 GMT
Not After : Mar 30 09:00:54 2026 GMT
Subject: CN=d4d7e2393f1ef8559e8dfaa90873dde3c293f2d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ad:8c:da:78:df:ba:9e:53:12:57:9b:97:1c:
ee:85:a9:63:83:71:98:cd:7f:e2:9b:8b:76:d3:68:
ce:31:ad:dd:58:7f:b4:95:4e:34:01:ca:74:9a:ab:
c3:56:bb:bd:58:52:2a:b7:07:5c:d9:06:4b:5b:b2:
d0:d1:cd:ca:28:f0:d5:59:e7:84:17:13:d2:42:91:
ba:3e:a2:8a:4d:44:bf:18:39:18:d3:bd:c0:a5:64:
e3:0c:9f:7b:d4:17:ba:24:7b:47:42:90:50:e8:8a:
dc:76:28:03:eb:8b:df:b2:47:7e:a8:5f:23:6f:d4:
a5:ea:d3:96:2e:17:29:d2:74:dc:50:13:ab:a3:a3:
83:15:f1:74:14:bb:c4:5b:ba:72:65:5e:b0:55:60:
6d:0b:be:e0:56:bf:aa:4c:e2:9b:fa:19:fd:f4:cb:
0d:f3:95:90:d4:95:d1:60:7c:f7:16:ce:61:8e:09:
d4:92:fe:90:fb:45:8e:14:6f:fa:6e:61:9c:09:a9:
8d:f0:70:2f:ad:43:39:30:a4:b1:01:28:8f:48:96:
f2:13:26:e5:83:6d:d9:49:af:14:5e:13:17:a9:61:
e6:2b:20:da:11:b2:aa:47:15:76:6e:2d:2c:36:57:
3c:c5:9b:9d:e5:be:fa:18:ac:23:86:80:88:ee:e3:
d2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:D7:E2:39:3F:1E:F8:55:9E:8D:FA:A9:08:73:DD:E3:C2:93:F2:D4
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:75:0a:89:66:9a:76:b0:5c:16:39:8a:1a:7e:85:ab:ad:75:
cf:1b:4d:71:06:bb:f7:cb:5b:38:50:3a:1b:f7:12:2e:be:8f:
39:71:29:58:e8:49:56:a2:df:30:64:35:36:59:63:e2:cb:16:
69:59:0f:58:7b:53:3c:4f:33:ad:19:e0:ed:fc:eb:fc:76:a5:
a5:7b:e1:f2:a2:b3:6f:d8:69:e6:ad:2c:12:3c:d1:db:91:82:
7b:49:f5:f8:77:b7:bc:5f:2e:2c:c6:8e:af:20:b6:a7:76:98:
80:bf:cd:92:03:04:25:7e:f6:10:a4:25:44:d1:a0:1b:28:fa:
05:e5:21:65:7a:63:c7:19:86:a1:fc:37:e4:38:9e:6b:39:86:
8d:45:39:40:05:9f:82:2e:8a:8a:ba:d3:d8:bc:66:ff:92:19:
0b:6c:d0:c0:cf:5b:29:c1:91:42:5c:9c:a7:8d:66:ab:fe:a3:
e2:48:0e:f7:2c:cc:66:e1:09:44:db:78:d6:f6:cc:05:b5:73:
bc:39:ca:a2:2f:5f:d8:7c:db:2c:d5:d5:68:21:96:b8:21:fa:
9c:a3:23:b0:d5:a0:22:c5:ae:84:ec:68:d3:0f:67:3a:b2:7c:
69:e7:64:70:85:30:52:8c:dc:d0:1c:af:10:e2:1f:70:47:86:
36:8e:67:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:52:23 2026 by rpki-client